Hi,
When you can't do it with some computers, what's the error message?
Based on my understanding, you want to user to have rights to RDP to other computers and at the same time, you want the user to have the administrative permission, right?
If i misunderstand you, please feel to let me know.
If you want to assign the RDP permission to a user on all the computers in the domain, you can configure the policy as following:
Create a GPO and link it to the domain level.
Right click the GPO and select edit.
Navigate to Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment
Add the administrators and users you want to assign the RDP permission. This policy will overwrite the default settings.
Navigate to Computer Configuration >> Administrative Templates >> Windows Components >> Remote Desktop Services >> Remote Desktop Session Host >> Connections.
On the right-side panel. Double-click on Allow users to connect remotely using Remote Desktop Services.
Select Enabled and click Apply if you want to enable Remote Desktop.
For the administrative permission, you may consider the following method:
Add the user to the local administrators group
Or perform delegation control through DUC.
To add the user to the local administrators group:
Open the GPO and navigate to Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Restricted Groups.
Right click and choose Add Group. If you want to add users to the local administrators group enter Administrators.
In the next window under “Members of this group:” click Add and choose the users to add to the local administrators group.
Note that any users that are currently in the local administrators group will be removed and replaced with the users you select here. If that is what you want, click OK and close the GPO.
For the delegation control, you can refer to the following link:
https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/plan/delegating-administration-by-using-ou-objects
Best Regards,